Techniques for portable devices functioning as an electronic purse (e-purse) are disclosed. According to one aspect of the invention, a mechanism is provided to enable a portable device to conduct transactions over an open network with a payment server without compromising security. In one embodiment, a device is loaded with an e-purse manager. The e-purse manager is configured to manage various transactions and functions as a mechanism to access an emulator therein. The transactions may be conducted over a wired network or a wireless network. A three-tier security model is contemplated to support the security of the transactions from the e-purse. The three-tier security model includes a physical security, an e-purse security and a card manager security, concentrically encapsulating one with another. Security keys (either symmetric or asymmetric) are personalized within the three-tier security model.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for providing an e-purse, the method comprising: providing a portable device including or communicating with a smart card pre-loaded with an emulator configured to execute a request from an e-purse applet and provide a response the e-purse applet is configured to expect, the portable device including a memory space loaded with a midlet that is configured to facilitate communication between the e-purse applet and a payment server over a wireless network, wherein the e-purse applet is downloaded and installed in the smart card when the smart card is in communication with the payment server, the portable device further includes a contactless interface that facilitates communication between the e-purse applet in the smart card and the payment server over a wired network; personalizing the e-purse applet by reading off data from the smart card to generate in the smart card one or more operation keys that are subsequently used to establish a secured channel between the e-purse applet and an e-purse security authentication module (SAM) external to the smart card, wherein said personalizing the e-purse applet comprises: establishing an initial security channel between the smart card and the e-purse SAM to install and personalize the e-purse applet in the smart card, and creating a security channel on top of the initial security channel to protect subsequent operations of the smart card with the e-purse SAM, wherein any subsequent operation of the emulator is conducted over the security channel via the e-purse applet.
2. The method as recited in claim 1 , wherein the operation keys include one or more of a load key and a purchase key, default personal identification numbers (PINs), administration keys, and passwords.
3. The method as recited in claim 2 , wherein at least some of the operation keys are used to establish a first secured channel so that various data is exchanged between the e-purse applet and the payment server, and at least another some of the operation keys are used to establish a second secured channel so that various data is exchanged between the e-purse applet and the e-purse SAM originally used to issue the e-purse as well as between the emulator and the existing SAM.
4. The method as recited in claim 2 , wherein said personalizing the e-purse applet is done over a wireless network or a wired network.
5. The method as recited in claim 4 , wherein, when said personalizing the e-purse applet is done over a wireless network, the midlet in the portable device is configured to facilitate communications between the e-purse and the payment server.
6. The method as recited in claim 5 , wherein both of the e-purse applet and the emulator are personalized as a result of said personalizing the e-purse applet.
7. The method as recited in claim 1 , further comprising: initiating a request from the e-purse after valid personal identification numbers are entered and accepted on the portable device; sending a request by the midlet to the e-purse applet that is configured to compose a response to be sent to the midlet; transporting the response to the payment server that is configured to verify that the response is from an authenticated e-purse, wherein the payment server further communicates with a financial institution to authorize a transaction therewith; and sending a server response from the payment server to the midlet that is configured to process the server response before releasing the server response to the e-purse applet.
8. The method as recited in claim 7 , wherein messages exchanged between the midlet and the payment server are in a type of commands encapsulated in network messages.
9. The method as recited in claim 8 , wherein the commands are applicable for APDU which stands for Application Protocol Data Unit.
10. The method as recited in claim 1 , wherein the e-purse is funded through a financial institution that maintains an account for a user being associated with the portable device, and the e-purse supports transactions in either e-commerce or m-commerce.
11. A system for providing an e-purse, the system comprising: a portable device including or communicating with a smart card pre-loaded with an emulator configured to execute a request from and provide a response an e-purse applet is configured to expect, the portable device including a memory space loaded with a midlet that is configured to facilitate wireless communication between the e-purse applet in the smart card and a payment server over a wireless network, the portable device further including a contactless interface that facilitates communication between the e-purse applet in the smart card and the payment server over a wired network, wherein the e-purse applet is downloaded from the payment server when the smart card is in communication with the payment server, and operations of personalizing the e-purse applet comprises: establishing an initial security channel between the smart card and the e-purse security authentication module (SAM) to install and personalize the e-purse applet in the smart card, and creating a security channel on top of the initial security channel to protect subsequent operations of the smart card with the e-purse SAM, wherein any subsequent operation of the emulator is conducted over the security channel via the e-purse applet; the payment server associated with an issuer authorizing the e-purse applet; and the e-purse SAM configured to enable the e-purse applet, wherein an SAM is behind the payment server and in communication with the e-purse applet when the e-purse applet is caused to communicate with the payment server via the midlet.
12. The system as recited in claim 11 , wherein both of the e-purse applet and emulator are personalized by reading off data from the smart card, the data is then used to generate operation keys for the e-purse applet.
13. The system as recited in claim 12 , wherein the operation keys include one or more of a load key and a purchase key, default personal identification numbers (PINs), administration keys, and passwords.
14. The system as recited in claim 13 , wherein at least some of the operation keys are used to establish a first secured channel so that various data is exchanged between the e-purse applet and the payment server, and at least another some of the operation keys are used to establish a second secured channel so that various data is exchanged between the e-purse applet and an existing security authentication module (SAM) originally used to issue the e-purse as well as between the emulator and the existing SAM.
15. The system as recited in claim 11 , wherein, when the portable device is used to have a transaction, there are operations of: initiating a request from the e-purse after valid personal identification numbers are entered and accepted on the portable device; sending a request by the midlet to the e-purse applet that is configured to compose a response to be sent to the midlet; transporting the response to the payment server that is configured to verify that the response is from an authenticated e-purse, wherein the payment server further communicates with a financial institution to authorize a transaction therewith; and sending a server response from the payment server to the midlet that is configured to process the server response before releasing the server response to the e-purse applet.
16. The system as recited in claim 15 , wherein messages exchanged between the midlet and the payment server are in a type of commands encapsulated in network messages.
17. The system as recited in claim 16 , wherein the commands are applicable for APDU which stands for Application Protocol Data Unit.
18. The system as recited in claim 11 , wherein the e-purse is funded through a financial institution that maintains an account for a user being associated with the portable device.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
September 24, 2006
February 21, 2012
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.